Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,536 advisories

Loading
Serendipity 2.0.3 is vulnerable to a SQL injection in the blog component resulting in information... High Unreviewed
CVE-2017-1000129 was published May 17, 2022
SQL injection vulnerability in the InLinks plugin through 1.1 for WordPress allows authenticated... High Unreviewed
CVE-2017-16955 was published May 17, 2022
A SQL injection vulnerability in core/inc/auto-modules.php in BigTree CMS through 4.2.19 allows... Moderate Unreviewed
CVE-2017-16961 was published May 17, 2022
FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability. An authenticated, remote... High Unreviewed
CVE-2017-8198 was published May 17, 2022
Multiple SQL injection vulnerabilities in Fiyo CMS 2.0_1.9.1 allow remote attackers to execute... Critical Unreviewed
CVE-2015-3934 was published May 17, 2022
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4... Critical Unreviewed
CVE-2017-16896 was published May 17, 2022
SQL injection vulnerability in ADbNewsSender before 1.5.2 allows remote attackers to execute... High Unreviewed
CVE-2008-6046 was published May 17, 2022
SQL injection vulnerability in the A-Reserve and A-Reserve for MT cloud versions 3.8.6 and... Critical Unreviewed
CVE-2017-10899 was published May 17, 2022
SQL injection vulnerability in the A-Member and A-Member for MT cloud versions 3.8.6 and earlier... Critical Unreviewed
CVE-2017-10898 was published May 17, 2022
Fiyo CMS 2.0.7 has SQL injection in /system/site.php via $_REQUEST['link']. High Unreviewed
CVE-2017-17102 was published May 17, 2022
Fiyo CMS 2.0.7 has SQL injection in /apps/app_user/sys_user.php via $_POST[name] or $_POST[email]... High Unreviewed
CVE-2017-17103 was published May 17, 2022
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to SQL injection. A remote attacker... High Unreviewed
CVE-2017-1356 was published May 17, 2022
The application Piwigo is affected by an SQL injection vulnerability in version 2.9.2 and... Moderate Unreviewed
CVE-2017-16893 was published May 17, 2022
Techno - Portfolio Management Panel through 2017-11-16 allows SQL Injection via the panel/search... High Unreviewed
CVE-2017-17695 was published May 17, 2022
The Pricing Table WordPress plugin before 3.6.1 fails to properly sanitize and escape user... Critical Unreviewed
CVE-2022-0867 was published May 17, 2022
The Visual Slide Box Builder WordPress plugin through 3.2.9 does not sanitise and escape various... High Unreviewed
CVE-2022-1182 was published May 17, 2022
SQL injection in calibreweb Critical
CVE-2022-30765 was published for calibreweb (pip) May 17, 2022
In HMS 1.0 when requesting appointment.php through POST, multiple parameters can lead to a SQL... Critical Unreviewed
CVE-2022-30011 was published May 17, 2022
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3... High Unreviewed
CVE-2012-2574 was published May 17, 2022
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3... High Unreviewed
CVE-2012-2961 was published May 17, 2022
A SQL injection vulnerability exists in ChurchCRM version 2.0.0 to 4.4.5 that allows an... High Unreviewed
CVE-2021-41965 was published May 16, 2022
Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-28929 was published May 16, 2022
Entrepreneur Dating Script 2.0.1 has SQL Injection via the search_result.php marital, gender,... Critical Unreviewed
CVE-2017-17648 was published May 14, 2022
In the POST request of the appointment.php page of HMS v.0, there are SQL injection... High Unreviewed
CVE-2022-30012 was published May 17, 2022
SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG)... Moderate Unreviewed
CVE-2014-1650 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database